This Video Can Exploit Your iPhone (CVE-2025-31200 #1)

Are you a security researcher or reverse engineer? For 50% off IDA Products use promo code BILLY50, https://hex-rays.com/pricing * For 30% off IDA Training use promo code BILLY30, https://hex-rays.com/training ** *License discounts are only valid for individuals, not corporations. Cannot be combined with any other promo code or discount. ** Cannot be combined with any other promo code or discount. ///////////////////////////////////// Hey guys, today we're looking at a recent vulnerability patched by Apple in iOS 18.4.1. The bug in CoreAudio - a user-space framework on iOS involved in media decoding - was found to be exploited in the wild against real iPhone users. No information on the exploit or the vulnerability itself has been revealed by Apple. So in this video today, I walkthrough the process of uncovering this bug by patch diffing the old and the new binary files. At my current point in research, I have not fully diagnosed the cause of the memory corruption. Let me know if you'd be interested in a future video investigating this further! Links: Diaphora for IDA Pro - https://plugins.hex-rays.com/joxeanko... Scripts & research notes by zhuowei https://github.com/zhuowei/apple-posi... noahhw4646 Twitter https://x.com/noahhw4646 Thanks for watching ~ bellis1000

Join Today
I Infected my iPhone with 'Coruna' Spyware. Here's What I Found.
▶︎

I Infected my iPhone with 'Coruna' Spyware. Here's What I Found.

Analysing a Pegasus 0-click Exploit for iOS
▶︎

Analysing a Pegasus 0-click Exploit for iOS

How did the iPhone become so secure?
▶︎

How did the iPhone become so secure?

Why Can't Your iPhone Render This Image?
▶︎

Why Can't Your iPhone Render This Image?

The WhatsApp Image 0-Click Attack That Hijacked Samsung Phones
▶︎

The WhatsApp Image 0-Click Attack That Hijacked Samsung Phones

THESE Apps Are SPYING on You — Shut Them Off NOW!
▶︎

THESE Apps Are SPYING on You — Shut Them Off NOW!

Delete GrapheneOS? WTF?!
▶︎

Delete GrapheneOS? WTF?!

What does Lockdown Mode actually do to keep you safe from spyware?
▶︎

What does Lockdown Mode actually do to keep you safe from spyware?

What the HECK Happened to Jailbreaking?!
▶︎

What the HECK Happened to Jailbreaking?!

How do hackers escape the sandbox?
▶︎

How do hackers escape the sandbox?

How does this JavaScript hack your iPhone?
▶︎

How does this JavaScript hack your iPhone?

Something is jamming GPS over Europe. Here's what we found
▶︎

Something is jamming GPS over Europe. Here's what we found

Hacker Warns: Millions Are Being Watched Right Now (Check These Devices ASAP)
▶︎

Hacker Warns: Millions Are Being Watched Right Now (Check These Devices ASAP)

Corrupting Memory w/Malicious Audio Stream (CVE-2025-31200 #2)
▶︎

Corrupting Memory w/Malicious Audio Stream (CVE-2025-31200 #2)

How 1-Click Can Hack your iPhone (WebKit Exploitation Explained)
▶︎

How 1-Click Can Hack your iPhone (WebKit Exploitation Explained)

Apple Says iPhone Is Safe. We Keep Finding Malware
▶︎

Apple Says iPhone Is Safe. We Keep Finding Malware

Hacking a Microprocessor - Reverse Engineer shows you how it's done
▶︎

Hacking a Microprocessor - Reverse Engineer shows you how it's done

Your iPhone is Recording. You Just Can't See It.
▶︎

Your iPhone is Recording. You Just Can't See It.

LANDFALL: How a Single Photo Can Turn Your Android Into Spyware | Zero-Click Attack Explained
▶︎

LANDFALL: How a Single Photo Can Turn Your Android Into Spyware | Zero-Click Attack Explained

Would you know if you'd been hacked? (iOS Spyware Forensics)
▶︎

Would you know if you'd been hacked? (iOS Spyware Forensics)